Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SKYmtcmLnDDyzrXqDG9-qJ2bcfc.roa
File: SKYmtcmLnDDyzrXqDG9-qJ2bcfc.roa (raw, json)
Hash identifier: 9nkAckhlDPpDCJo3mEmq5NCtIapSNCD69LiFobboDcI=
Subject key identifier: 48:A6:26:B5:C9:8B:9C:30:F2:CE:B5:EA:0C:6F:7E:A8:9D:9B:71:F7
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 019423D71AF6325202953AF9F20D472549F0
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SKYmtcmLnDDyzrXqDG9-qJ2bcfc.roa
Signing time: Wed 01 Jan 2025 21:48:07 +0000
ROA not before: Wed 01 Jan 2025 21:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200740
IP address blocks: 45.9.72.0/24 maxlen: 24
45.138.73.0/24 maxlen: 24
46.17.105.0/24 maxlen: 24
80.76.32.0/23 maxlen: 23
80.76.34.0/23 maxlen: 23
91.217.76.0/24 maxlen: 24
92.118.8.0/23 maxlen: 23
94.142.136.0/23 maxlen: 23
94.142.136.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
95.214.10.0/23 maxlen: 23
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
185.40.7.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.94.164.0/23 maxlen: 23
185.94.164.0/24 maxlen: 24
185.94.165.0/24 maxlen: 24
185.102.136.0/24 maxlen: 24
185.103.252.0/23 maxlen: 23
185.103.252.0/24 maxlen: 24
185.103.253.0/24 maxlen: 24
185.103.254.0/23 maxlen: 23
185.103.254.0/24 maxlen: 24
185.103.255.0/24 maxlen: 24
185.112.81.0/24 maxlen: 24
185.114.72.0/23 maxlen: 23
185.114.72.0/24 maxlen: 24
185.114.73.0/24 maxlen: 24
185.117.116.0/24 maxlen: 24
185.117.119.0/24 maxlen: 24
185.200.190.0/24 maxlen: 24
185.232.170.0/23 maxlen: 23
185.233.80.0/23 maxlen: 23
185.233.82.0/24 maxlen: 24
185.233.202.0/23 maxlen: 23
185.252.144.0/24 maxlen: 24
193.124.182.0/24 maxlen: 24
193.124.183.0/24 maxlen: 24
193.124.188.0/23 maxlen: 23
193.124.190.0/24 maxlen: 24
193.239.160.0/23 maxlen: 23
193.239.166.0/23 maxlen: 23
194.36.178.0/23 maxlen: 23
2a04:5200:68::/48 maxlen: 48
2a04:5201:2::/48 maxlen: 48
2a04:5201:4::/48 maxlen: 48
2a04:5201:6::/48 maxlen: 48
2a04:5201:7::/48 maxlen: 48
2a04:5201:9::/48 maxlen: 48
2a04:5201:10::/48 maxlen: 48
2a04:5201:8018::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:1a:f6:32:52:02:95:3a:f9:f2:0d:47:25:49:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 21:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=48a626b5c98b9c30f2ceb5ea0c6f7ea89d9b71f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:eb:26:9f:2b:6a:01:40:c9:91:2c:c3:69:db:
6b:53:46:d8:57:d3:6d:72:b6:6c:dd:7a:b2:14:8b:
6c:c0:cd:7b:71:7e:b0:55:a1:55:df:37:31:4f:34:
ff:bf:e2:00:13:e9:a2:6e:cf:9e:8a:45:19:9e:f9:
6d:10:d4:55:1e:12:f0:d3:3b:30:36:61:a3:a2:b6:
15:20:7a:e7:fb:1f:ea:3d:13:cd:7e:1c:9d:71:80:
64:6a:49:7a:0d:72:7f:0a:cc:37:a2:94:52:69:e8:
7b:03:98:bc:1b:de:f7:8d:d7:a2:09:79:b5:17:69:
7a:2d:14:08:24:a7:6f:57:94:c5:0e:3b:90:1d:1b:
e8:60:e0:a0:32:ea:62:16:27:6e:eb:3b:4e:19:e0:
4b:df:0b:19:f2:5c:53:aa:c7:92:f1:8f:36:d9:2e:
1f:4d:97:92:28:f2:eb:87:8f:00:1c:63:90:b7:3f:
8d:5a:38:04:c9:ea:5d:a0:c0:40:a6:15:32:67:57:
e8:51:ef:cf:ad:9f:9a:0c:59:5c:63:4e:7b:43:de:
b1:77:60:9e:8e:cc:42:2a:de:28:94:9b:b0:03:7c:
fa:11:11:f2:ec:89:2e:68:e9:a7:65:d6:d9:df:28:
6d:f8:b4:cc:76:28:91:c6:a5:1a:b4:09:3b:fc:be:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A6:26:B5:C9:8B:9C:30:F2:CE:B5:EA:0C:6F:7E:A8:9D:9B:71:F7
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/SKYmtcmLnDDyzrXqDG9-qJ2bcfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.72.0/24
45.138.73.0/24
46.17.105.0/24
80.76.32.0/22
91.217.76.0/24
92.118.8.0/23
94.142.136.0/23
95.214.9.0-95.214.11.255
185.40.7.0/24
185.58.204.0/24
185.94.164.0/23
185.102.136.0/24
185.103.252.0/22
185.112.81.0/24
185.114.72.0/23
185.117.116.0/24
185.117.119.0/24
185.200.190.0/24
185.232.170.0/23
185.233.80.0-185.233.82.255
185.233.202.0/23
185.252.144.0/24
193.124.182.0/23
193.124.188.0-193.124.190.255
193.239.160.0/23
193.239.166.0/23
194.36.178.0/23
IPv6:
2a04:5200:68::/48
2a04:5201:2::/48
2a04:5201:4::/48
2a04:5201:6::/47
2a04:5201:9::/48
2a04:5201:10::/48
2a04:5201:8018::/48
Signature Algorithm: sha256WithRSAEncryption
3a:34:57:56:69:6a:44:aa:5b:44:93:f6:be:74:24:46:62:2f:
5d:6d:3e:8f:4c:76:30:e4:4f:11:18:9e:5a:30:b9:2f:60:bb:
c4:1b:01:77:01:a9:e0:8e:19:2a:0a:79:15:09:8a:c3:2f:ee:
f5:78:5e:9e:a1:d8:26:a5:e2:35:61:bc:96:fc:02:d4:54:eb:
aa:ef:2e:ca:92:5a:5c:2f:b2:be:48:30:79:73:4b:72:e0:44:
a8:f8:20:c2:ab:c2:86:d4:c8:ef:85:b0:be:1a:a7:f9:e1:20:
55:56:51:e8:35:34:26:0e:56:b0:62:8a:e1:0a:d7:7f:61:27:
17:95:fc:e4:6d:aa:10:a8:ae:d4:f4:7b:24:46:86:8e:d7:79:
50:c3:72:fa:ed:1c:b2:00:d6:e4:96:9a:8d:ee:d0:c9:9e:fd:
8c:b9:08:74:e9:f4:d7:e9:ab:72:cf:1d:6a:6a:be:18:ef:69:
d9:b9:27:1f:49:c8:05:cb:e6:54:74:d7:3e:d9:79:11:8c:1f:
c0:5a:83:c0:dc:af:ca:60:78:14:d6:66:2f:9b:94:a5:6e:a3:
74:97:5c:e7:75:e3:b9:4f:c9:61:6d:6e:84:64:43:55:f6:82:
5d:f9:15:ae:82:f0:bb:7c:77:76:a2:e6:f3:a7:92:1d:6e:38:
61:f4:4d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:44:13 2025 by rpki-client